Location-spoofing detection system for a network service

ABSTRACT

A computing system can receive location data from computing devices of drivers, each of the computing devices operating a designated application associated with an application service. The system can determine a set of locational attributes of a respective driver and determine whether one or more anomalous locational attributes are present in the set of locational attributes of the respective driver. In response to determining that one or more anomalous locational attributes are present, the system can associate a data set with a driver profile of the respective driver.

CROSS-REFERENCE TO RELATED APPLICATION

This application is a continuation of U.S. patent application Ser. No. 16/155,382, filed on Oct. 9, 2018, which is hereby incorporated by reference in its entirety.

BACKGROUND

Location data obtained from positioning systems (e.g., a global positioning system), such as by global positioning system components on computing devices, can be essential for location-based network services, such as for transport provider selection and for tracking the fulfillment of transport requests (e.g., ride requests or delivery requests) made by requesting users.

BRIEF DESCRIPTION OF THE DRAWINGS

The disclosure herein is illustrated by way of example, and not by way of limitation, in the figures of the accompanying drawings in which like reference numerals refer to similar elements, and in which:

FIG. 1 is a block diagram illustrating an example network computing system implementing location-spoofing detection, in accordance with examples described herein;

FIG. 2 is a block diagram illustrating an example driver computing device executing a service application for communicating with the network computing system, according to examples described herein;

FIGS. 3A and 3B are flow charts describing example methods of detecting location-spoofing by transport providers, according to various examples; and

FIG. 4 is a block diagram that illustrates a computer system upon which examples described herein may be implemented.

DETAILED DESCRIPTION

Location-spoofing involves the operation of a location-spoofing program or application on a computing device that falsifies the actual or current location of the computing device. For example, global positioning system (GPS) spoofing attacks seek to deceive a GPS receiver on the computing device by broadcasting incorrect GPS signals that are configured to resemble normal signals from GPS satellites, or rebroadcasting GPS signals captured elsewhere at a different time (e.g., through the use of a third-party GPS spoofing application program). In another example, a location-spoofing application operating on a computing device can cause another application operating on the computing device to transmit false location information (e.g., a fake current location as opposed to an actual current location) to a network service associated with that application. With traditional taxis, fraudulent activity may involve manipulating fare meters or taximeters by, for example, driving indirect routes, adding erroneous surcharges, changing a fare code to a more expensive fare code, or other regrettable actions. With the advent of application-based, network services (e.g., on-demand transport services), more elaborate fraudulent methods have been conceived, including location-spoofing which can enable certain transport providers to, for example, pretend to be at a certain location, pretend to have driven along a route, insert additional location points along a route to increase the distance traveled, jump or teleport ahead of other transport providers in a queue (e.g., at an airport), etc.

A computing system is described herein that supports the detection of location-spoofing by transport providers of an application-based, on-demand transport service. The computing system (and/or the designated application operating on the transport provider's device) can implement location-spoofing detection techniques described herein for an application-based, network service (e.g., an on-demand transport service). The computing system can include a network communication interface that communicates, over one or more networks, with computing devices of transport providers operating throughout a region and computing devices of requesting users seeking transport services. In various examples, the computing system can receive transport requests from users through a dedicated transport service application executing on the computing devices of the requesting users. The transport providers can execute a designated transport provider application on their computing devices to receive transport invitations that enable the transport provider to accept and service transport requests received from the requesting users.

For a received transport request, the computing system can perform a selection operation based on for example, the distance and/or time to the pick-up location, the transport supply in surrounding subregions of the rendezvous location, and/or a set of utility metrics. The selection operation can result in a transport provider being selected to service the transport request (e.g., a transport provider that is optimally close, traveling in a direction towards the pick-up location and/or destination location, and/or has an optimal or maximum score as compared to other transport providers). In some implementations, the computing system can first determine a pool of candidate transport providers given a rendezvous location in a transport request, and then perform the selection operation with respect to the initial pool.

In identifying candidate transport providers, the computing system can receive, over one or more networks, location data from the computing devices of the transport providers as the transport providers operate throughout the transport service region. For one or more of the transport providers, the computing system can determine whether that transport provider's computing device is running a location-spoofing application or program based, at least in part, on the location data received from the computing device of the transport provider (e.g., the computing system can determine whether a transport provider is operating a location-spoofing application to behave fraudulently).

For example, the computing system can initially determine, based on the location data received from the computing device of the transport provider, a set of locational attributes of the transport provider. The set of locational attributes can comprise a position, a velocity, a current acceleration, an elevation of the transport provider, and/or various other location-based information. In some examples, the computing system can determine the set of locational attributes using one or more sets of sensor data and/or location data received from the computing device of the transport provider. For example, the computing system can determine an average speed of the transport provider between any two or more points along a route that the transport provider travels based on the time elapsed between the two or more points (e.g., using timestamps embedded in the received location data). The computing system can also determine, at any time, the course or heading of the transport provider.

In certain implementations, the computing system can further compile and store sets of driving profiles for various road segments of the transport service region. These driving profiles can indicate the typical driving speed or behaviors of transport providers driving through a corresponding road segment. The driving profiles can be constructed by the computing system using numerous data records of transport providers driving through the corresponding road segment. Furthermore, each data record of a driving profile of a given road segment can include timestamps, a description or indication of the current traffic conditions, traffic signal states, the average speed of the transport provider through the road segment, and the like. In some aspects, a driving profile can include a minimum feasible time to drive from a start point to an end point of the road segment corresponding to the driving profile. This minimum feasible time can be weather condition and/or traffic condition dependent, according to various implementations, and can therefore fluctuate given the current weather and/or traffic conditions of the road segment. In some aspects, the minimum feasible time can be factored or received as an input to a feasibility model described herein.

In certain examples, the computing system can receive additional sensor data from the computing device of the transport provider, such as image data, audio data, barometer data, accelerometer, gyroscopic, and/or magnetometer data (e.g., from an inertial measurement unit (IMU) of the computing device). In some aspects, the computing system can correlate these additional data to the location-data received from the positioning system of the transport provider's computing device (e.g., a GPS receiver) to at least partially determine whether the transport provider is running a location-spoofing application.

Additionally or alternatively, the computing system can determine whether the transport provider is operating a location-spoofing application by running the set of locational attributes through a location-based feasibility model. The feasibility model can comprise one or more algorithms (e.g., machine learning algorithms) programmed to determine a realistic value indicating whether the locational attributes of the transport provider are possible, feasible, unrealistic, or impossible. In certain implementations, the feasibility model can output a binary answer (e.g., correlative to a yes or no answer) indicating whether the transport provider is operating a location-spoofing application. In variations, the feasibility model can output a probability or score that the transport provider is operating a location-spoofing application (e.g., a score from 0 to 1).

In various examples, the computing system can determine whether the transport provider is operating a location-spoofing application by running the set of locational attributes through a set of computational rules. For example, the computing system can initially determine extreme cases based on calculated or observed speed of drivers through a particular road segment. In such examples, the set of computational rules can include a point-to-point computation indicating whether the velocity of the transport provider exceeds a feasibility threshold (e.g., 90 miles per hour). If so, then the computing system can infer that the transport provider is operating a location-spoofing application. If not, then the computing system can optionally continue to determine whether the transport provider is operating a location-spoofing application in accordance with the examples described herein.

In certain examples, given a set of locational attributes of a transport provider, the computing system can perform a lookup in the driving profile database for a matching driving profile corresponding to a road segment traversed by the transport provider. The computing system may further access, as input into the feasibility model, the traffic conditions at the time the driving traversed the road segment (e.g., current traffic conditions), the time of day, day of the week, weather conditions, and the like. The computing system may then compare the locational attributes of the transport provider with the matching driving profile to determine whether the locational attributes are feasible or exceed a set of feasibility thresholds. These feasibility thresholds can comprise acceleration at any given time, horizontal velocity, and/or elevation change thresholds that, when exceeded, indicate the use of a location-spoofing application. In some aspects, the computing system can further run a motion simulation of the transport provider along the road segment based on the locational attributes to determine or confirm that the transport provider is operating a location-spoofing program or application.

In the process of selecting a transport provider to service a transport request, the computing system can filter out or exclude any transport provider that is determined to be running a location-spoofing application. For example, the computing system can determine whether a transport provider is operating a location-spoofing application after determining the pool of candidate transport providers, or can make the determination as a final check before transmitting the transport invitation to the transport provider.

In certain implementations, the computing system can include a database comprising user profiles of the requesting users, and driver profiles of the transport providers. The user profiles can include account information, unique identifiers of the requesting users, user preferences, and historical data corresponding to the user's utilization of the on-demand transport service. The driver profiles can include personal information of the transport provider, such as the transport provider's vehicle type, model, a driver rating as determined by passengers that the transport provider has transported, earnings data, bonus information, and a historical record of any demerits and the nature of those demerits in connection with the on-demand transport service. Such demerits may indicate instances in which the transport provider treated a passenger poorly, instances of attempted fraud (e.g., vomit fraud), location-spoofing instances (e.g., queue jumping attempts), and the like. In some aspects, when the demerits of a transport provider cross a predetermined threshold, the computing system can exclude the transport provider from all future matching operations.

According to various examples provided herein, the computing system can input a demerit in the driver profile of the transport provider in response to determining that the transport provider is operating a location-spoofing application. In some aspects, the demerit can affect at least one of a driver rating of the transport provider (e.g., exclude the transport provider from any currently offered incentives).

Certain implementations provide for an initial data quality filter that enables the computing system to process only high-quality location data. For example, upon receiving location data from a computing device of a transport provider, the computing system can initially determine whether the quality of the location data is above a certain quality threshold, and not encumbered by distortion or other multipath effects (e.g., caused by trees, buildings, narrow streets, etc.). If the data quality is above the quality threshold, then the computing system can further process the location data to determine whether the data are a product of location-spoofing.

It is contemplated herein that the location-spoofing detection techniques described throughout the present disclosure will increase in precision and accuracy, as well as the machine learning models implemented to construct driving profiles, establish feasibility thresholds given current locational attributes, and ultimately determine whether any given transport provider is operating a location-spoofing program at any given time. The examples described herein further enable a computing system to remotely determine or infer the existence and operation of a third-party location-spoofing program or application on a remote device (e.g., on the computing device of a transport provider) without accessing the memory store of the computing device itself (e.g., based solely or partially on location data received). It is further contemplated that such techniques described herein can be implemented across any transport service region of any size and in any geographic area.

Among other benefits, examples described herein achieve a technical effect of reducing or eliminating deceit perpetrated by the few transport providers that seek to utilize location-spoofing technology to, for example, increase fares, teleport to the front of queues, add location points to a trip, and the like. The example computing systems described herein can comprise inference engines that may be continually improved upon to provide various technical solutions to the technical and practical problems created by location-spoofing programs in the field of transportation services.

As used herein, a “user” of the network service can comprise a transport provider or a driver of an on-demand transport service. A “requesting user” or “requester” can comprise a rider or passenger requesting a ride by utilizing the on-demand transport service.

As used herein, a computing device refers to devices corresponding to desktop computers, cellular computing devices and/or smartphones, personal digital assistants (PDAs), laptop computers, virtual reality (VR) or augmented reality (AR) headsets, tablet computing devices, etc., that can provide network connectivity and processing resources for communicating with the system over a network. A computing device can also correspond to custom hardware, in-vehicle devices of automobiles, or on-board computers, etc. The computing device can also operate a designated application configured to communicate with the network service.

One or more examples described herein provide that methods, techniques, and actions performed by a computing device are performed programmatically, or as a computer-implemented method.

Programmatically, as used herein, means through the use of code or computer-executable instructions. These instructions can be stored in one or more memory resources of the computing device. A programmatically performed step may or may not be automatic.

One or more examples described herein can be implemented using programmatic modules, engines, or components. A programmatic module, engine, or component can include a program, a sub-routine, a portion of a program, or a software component or a hardware component capable of performing one or more stated tasks or functions. As used herein, a module or component can exist on a hardware component independently of other modules or components. Alternatively, a module or component can be a shared element or process of other modules, programs or machines.

Some examples described herein can generally require the use of computing devices, including processing and memory resources. For example, one or more examples described herein may be implemented, in whole or in part, on computing devices such as servers, desktop computers, cellular or smartphones, personal digital assistants (e.g., PDAs), laptop computers, VR or AR devices, printers, digital picture frames, network equipment (e.g., routers) and tablet devices. Memory, processing, and network resources may all be used in connection with the establishment, use, or performance of any example described herein (including with the performance of any method or with the implementation of any system).

Furthermore, one or more examples described herein may be implemented through the use of instructions that are executable by one or more processors. These instructions may be carried on a computer-readable medium. Machines shown or described with figures below provide examples of processing resources and computer-readable mediums on which instructions for implementing examples disclosed herein can be carried and/or executed. In particular, the numerous machines shown with examples of the invention include processors and various forms of memory for holding data and instructions. Examples of computer-readable mediums include permanent memory storage devices, such as hard drives on personal computers or servers. Other examples of computer storage mediums include portable storage units, such as CD or DVD units, flash memory (such as carried on smartphones, multifunctional devices or tablets), and magnetic memory. Computers, terminals, network enabled devices (e.g., mobile devices, such as cell phones) are all examples of machines and devices that utilize processors, memory, and instructions stored on computer-readable mediums. Additionally, examples may be implemented in the form of computer-programs, or a computer usable carrier medium capable of carrying such a program.

System Description

FIG. 1 is a block diagram illustrating an example network computing system 100 implementing location-spoofing detection, in accordance with examples described herein. The network computing system 100 can include a database 155 that stores transport provider profiles 157 and user profiles 159, and a profile manager 140 that operates to set up, configure, add to, and reconfigure the profiles 157, 159 based on status updates, completed transport requests, inputted ratings, and the like. The computing system 100 can further include a matching engine 150 that receives location data from the computing devices 191 of the transport providers 194 (e.g., over a provider device interface 115 via an executing designated application 192) and transport requests from the computing devices 195 of the requesting users 197 (e.g., over a user device interface 125 via an executing transport service application 196) over one or more networks 180. The matching engine 150 can match the transport providers 194 with the users 197 in accordance with the examples described herein.

For example, a requesting user 197 can submit a transport request via the transport service application 196 executing on the computing device 195 of the user 197. The transport request can comprise a request for personal transport (e.g., a rideshare request), package or mail delivery, freight transport, and/or food and drink delivery. The matching engine 150 can track the locations of transport providers 194 operating throughout the transport service region, and determine a set of candidate transport providers within a certain proximity of the requesting user 197. The matching engine 150 may then select an optimal transport provider 194 from the candidate set to service the transport request (e.g., based on distance and/or time to the requesting user 197, a pick-up location, or delivery location). Once selected, the matching engine 150 can transmit a transport invitation to the computing device 191 of the selected transport provider 194 (e.g., over the network(s) 180 via the executing application 192). The transport provider 194 can accept or decline the transport invitation. If the transport provider 194 elects to decline the invitation, the matching engine 150 can sequentially submit the transport invitation to additional transport providers until the invitation is accepted.

The computing system 100 can further include an inference engine 120 that can receive the location data from the computing devices 191 of the transport providers 194, and determine whether a given transport provider 194 is operating location-spoofing software on the computing device 191, in accordance with the examples described herein. For example, the inference engine 120 can execute a computational ruleset 122 and/or a feasibility model 124 based on the location data to determine whether any anomalous locational attributes are present (e.g., extreme acceleration or velocity indications). In determining whether location-spoofing software is being utilized by a transport provider 194, the inference engine 120 can access a database 145 comprising driving profiles 147 of particular road segments. The driving profiles 147 can indicate the typical driving speed or behaviors of transport providers 194 or other vehicles driving through the corresponding road segment. Each data record of a driving profile 147 of a given road segment can include metadata indicating one or more timestamps, a description or indication of the current traffic conditions, traffic signal states, the average speed of transport providers 194 through the road segment, and the like. In some aspects, each driving profile 147 can be associated with a minimum feasible time to drive from a start point to an end point of the road segment corresponding to the driving profile 147.

At any given time, the inference engine 120 can determine whether a particular transport provider's computing device 191 is running a location-spoofing application or program. For example, the inference engine 120 can utilize the location data received from the computing device 191 to determine a set of locational attributes of the transport provider 194, such as the transport provider's position, velocity, current acceleration, elevation, heading, and the like. Additionally, the inference engine 120 can determine an average speed of the transport provider 194 between any two or more points along a current route on which the transport provider travels. In certain examples, the two or more location points can correspond to a particular driving profile 147, which the inference engine 120 can access to compare with locational attributes of the transport provider 194.

In certain examples, the inference engine 120 can receive additional sensor data from the computing device 191 or vehicle of the transport provider 194, such as image data, audio data, barometer data, accelerometer, gyroscopic, and/or magnetometer data (e.g., from an inertial measurement unit (IMU) of the computing device 191). In some aspects, the computing system can correlate these additional data to the location-data received from the positioning system of the transport provider's computing device 191 (e.g., a GPS receiver) to at least partially determine whether the transport provider 194 is operating a location-spoofing application.

Additionally or alternatively, the inference engine 120 can determine whether the transport provider 194 is operating a location-spoofing application by running the set of locational attributes through a location-based feasibility model 124. The feasibility model 124 can comprise one or more algorithms (e.g., machine learning algorithms) programmed to determine a realistic value indicating whether the locational attributes of the transport provider 194 are possible, feasible, unrealistic, or impossible. In certain implementations, the feasibility model 124 can output a binary answer (e.g., correlative to a yes or no answer) or a probability indicating whether the transport provider 194 is operating a location-spoofing application on the transport provider's computing device 191. If the probability is above a certain probability threshold (e.g., 90% in the affirmative), then the inference engine 120 can conclude that the transport provider is using location-spoofing resources to mislead the on-demand transport service.

In certain implementations, the feasibility model 124 can receive various inputs, such as the location data from the transport provider 194, the set of locational attributes determined by the inference engine 120, and one or more matching driving profiles 147 of one or more road segments on which the transport provider 194 travels. In some aspects, the inference engine 120 can input additional factors into the feasibility model 124, such as sensor data (e.g., IMU data) from the computing device 191 of the transport provider 194. Based on the various inputs, the feasibility model 124 can identify any location-based anomalies, such as unreasonable jumps in speed, acceleration, elevation changes, and the like, and can output an answer or probability indicating whether or not the transport provider 194 is using location-spoofing resources. For example, the feasibility model 124 can identify, in the location data, an extreme jump in acceleration (e.g., exceeding 5 g, or 49 m/s2), positional teleportation, or extreme velocities (e.g., exceeding 100 miles per hour). Additionally or alternatively, the feasibility model 124 can attempt to correlate sensor data (e.g., IMU data from the transport provider's computing device 191) with the location data to identify any uncorrelated anomalies (e.g., an acceleration spike in the location data that is not present in the IMU data). If the data correlate properly, the feasibility model 124 can output a confirmation that the transport provider 194 is not using location-spoofing software. However, if the data do not correlate, then the feasibility model 124 can, for example, flag each uncorrelated instance or anomaly in the location data, and generate a report identifying such instances or anomalies concluding that location-spoofing software is being utilized.

In addition or as an alternative, the inference engine 120 can determine whether the transport provider 194 is running location-spoofing software by executing a ruleset 122 on the set of locational attributes. In some examples, the inference engine 120 can initially determine extreme cases for the road segment on which the transport provider travels based on calculated or observed velocity. The ruleset 122 can comprise a point-to-point computation indicating whether the velocity of the transport provider 194 exceeds a feasibility threshold (e.g., 90 miles per hour). If so, then the inference engine 120 can determine that the transport provider 194 is using location-spoofing resources to attempt to mislead the on-demand transport service implemented by the matching engine 150.

In some aspects, the inference engine 120 can run a motion simulation of the transport provider 194 along a road segment of a matching driving profile 147 based on the locational attributes. The motion simulation can expose any anomalous behavior indicative of the transport provider 194 utilizing location-spoofing resources. For example, any sudden jumps or teleportation, unreasonable elevation changes, and the like may be revealed by the motion simulation.

In certain implementations, the computing system 100 can include a database 155 comprising user profiles 159 of the requesting users 197, and provider profiles 157 of the transport providers 194. The user profiles 159 can include account information, unique identifiers of the requesting users 197, user preferences, and historical data corresponding to the user's utilization of the on-demand transport service. The provider profiles 157 can include personal information of the transport provider 194, such as the transport provider's vehicle type, model, a driver rating as determined by passengers that the transport provider 194 has transported, earnings data, bonus information, and a historical record of any demerits and the nature of those demerits in connection with the on-demand transport service. Each demerit can be associated with a particular action of the transport provider 194, such as an altercation with a passenger, an instance of using location-spoofing in connection with the on-demand transport service, and the like.

According to various examples described herein, when the inference engine 120 determines that a transport provider 194 is utilizing location-spoofing technology, the inference engine 120 can trigger a profile manager 140 of the computing system 100 to flag the driver profile 157 of the transport provider 194 to indicate that the transport provider 194 is currently utilizing location-spoofing software. The profile manager 140 can track the behavior and/or performance of each transport provider 194. In some aspects, when the demerits of a transport provider 194 cross a predetermined threshold, the matching engine 150 can exclude the transport provider 194 from future matching operations (e.g., for the rest of the day), or can exclude the transport provider 194 from participating in the on-demand transport service.

In certain implementations, when the matching engine 150 determines a candidate set of transport providers 194 for a given transport request, the matching engine 150 can perform a lookup in the provider profiles 157 to determine whether any of the transport providers 194 in the candidate set has been flagged as currently utilizing location-spoofing software. If the matching engine 150 determines that one or more transport providers 194 in the candidate set are utilizing location-spoofing software, the matching engine 150 can exclude those transport providers 194 from the current matching operation. Accordingly, any transport provider 194 seeking to mislead the on-demand transport service by using location-spoofing software in order to gain a potential matching advantage can be excluded from any current matching operations. In certain examples, the profile manager 140 can further notify the transport provider 194 of the computing system's awareness that the transport provider 194 is using location-spoofing software.

Computing Device

FIG. 2 is a block diagram illustrating an example computing device 200 of a transport provider executing and operating a designated transport service application 232 for communicating with the computing system 290 (e.g., computing system 100 shown and described with respect to FIG. 1). In various implementations, the computing device 200 can comprise a mobile computing device, such as a smartphone, tablet computer, laptop computer, VR or AR headset device, and the like. As such, the computing device 200 can include telephony features such as a microphone 245, a camera 250, and a communication interface 210 to communicate with external entities using any number of wireless communication protocols. The computing device 200 can further include a positioning module 260 (e.g., a GPS receiver) and an inertial measurement unit 264 that includes one or more accelerometers, gyroscopes, or magnetometers.

In certain aspects, the computing device 200 can store the designated application 232 in a local memory 230. In variations, the memory 230 can store additional applications executable by one or more processors 240 of the computing device 200, enabling access and interaction with one or more host servers over one or more networks 280. One such application can comprise a location-spoofing application 234 that the computing device 200 can execute to provide incorrect location data to the computing system 290, as provided herein. For example, the location-spoofing application 234 can be executing in concert with the designated application 232 to enable the transport provider to mislead the computing system 290 regarding the position of the transport provider.

In response to a user input 218 by a transport provider (e.g., the selection of an icon representing the designated application 232), the designated application 232 can be executed by a processor 240, which can cause a display interface 222 to be generated on a display screen 220 of the computing device 200. In various implementations, the display interface 222 can enable transport provider to view and accept transport invitations and follow map directions to rendezvous and/or drop-off locations.

In various examples, the positioning module 260 can provide location data indicating the current location of the transport provider to the network computing system 290 to, for example, enable the computing system 290 match the transport provider with requesting users. As described herein, the location data can be utilized by the computing system 290 to determine whether the computing device 200 is currently executing the location-spoofing application 234, as described herein. In further implementations, the computing device 200 can also transmit additional sensor data to the computing system 290, such as image data from the camera 250, audio data from the microphone 245, and IMU data from the IMU 264 to enable the computing system 290 to determine whether the location-spoofing application 234 is being utilized by the computing device 200.

Methodology

FIGS. 3A and 3B are flow charts describing example methods of detecting location-spoofing by transport providers, according to various examples. In the below discussion of FIGS. 3A and 3B, reference may be made to reference characters representing various features shown and described with respect to FIGS. 1 and 2. Furthermore, the processes described with respect to FIGS. 3A and 3B may be performed by an example computing system 100 as shown and described in connection with FIG. 1. Referring to FIG. 3A, the computing system 100 can receive location data from transport providers 194 operating throughout a transport service region (300). As described herein, the location data can indicate a position, velocity, heading, elevation, etc. of the transport provider 194. Based on the location data, the computing system 100 can determine whether a particular transport provider 194 is running a location-spoofing application on the computing device 191 of the transport provider 194 (305). For example, the computing system 100 can execute a ruleset 122 on the location data to determine, for example, whether the velocity of the transport provider 194 exceeds a certain reasonableness threshold (e.g., 90 miles per hour over a particular road segment) (307). Additionally or alternatively, the computing system 100 can execute a machine learning model (e.g., feasibility model 124) on the location data, which can output an indication of whether the transport provider 194 is using location-spoofing software (309).

FIG. 3B depicts another example method of detecting location-spoofing software, according to various examples. Referring to FIG. 3B, the computing system 100 can initially filter location data from the computing devices 191 of transport providers 194 based on data quality (310). For example, the computing system 100 may output inadequate results with unacceptable error when executing a feasibility model 124 on low quality location data. Accordingly, the initial filter can result in only high-quality location data being processed by the computing system 100. Based on the location data from a particular transport provider 194, the computing system 100 can determine a set of locational attributes of the transport provider 194 (315). As described herein, the locational attributes can comprise a velocity (316), acceleration (317), elevation (318), and/or a course or heading of the transport provider 194 (319).

Accordingly to various examples, the computing system 100 can execute a feasibility model 124 on the locational attributes (320). In certain examples, the computing system 100 can initially execute a ruleset 122 using the locational attributes to determine whether any of the locational attributes are clearly anomalous (e.g., indicating teleportation by the transport provider 194) (322). Additionally or alternatively, the computing system 100 can perform a driving profile comparison between the locational attributes and a matching driving profile 147 of a road segment on which the transport provider 194 travels (323). The matching driving profile 147 can indicate normal or average speeds and/or times for traversing the corresponding road segment. In some aspects, the matching driving profile 147 can also indicate a maximum speed or minimum time threshold for traversing the road segment. If, for example, the velocity of the transport provider exceeds the maximum speed threshold, the computing system 100 can conclude that the transport provider 194 is running a location-spoofing application.

In further implementations, execution of the feasibility model 124 can comprise a variety of additional factors, such as weather conditions (e.g., rain, snow, or sunshine), current traffic conditions, the time of day (e.g., rush hour), the time of week (e.g., weekday versus weekend), and the like. Given the set of additional factors, the computing system 100 adjust a set of feasibility thresholds corresponding to, for example, a maximum velocity threshold of traversing a particular road segment, a maximum acceleration at any given time, a maximum elevation change given a known road segment, and the like. According to various implementations, when the computing system 100 establishes the feasibility thresholds, the computing system 100 may then determine whether the locational attributes of the transport provider 194 meet, cross, or exceed any of the established thresholds, which would indicate that the transport provider 194 is using location-spoofing software.

In any case, the feasibility model 124 can output an indication of whether the transport provider's traversal of a given road segment is feasible (325), which can indicate whether the transport provider 194 is using location-spoofing software to mislead the computing system 100. If the traversal is feasible (327), the computing system 100 can approve the transport provider 194 for matching operations with requesting users 197 (330). However, if the computing system 100 determines that the transport provider's traversal of a particular road segment is not feasible (326), then the computing system 100 can exclude the transport provider 194 from any current matching operations (335). Additionally, the computing system 100 can input a demerit into the profile 157 of the transport provider 194 indicating an instance of the transport provider's attempted deceit (340). As described herein, the demerit can affect at least one of a driver rating or a compensation of the transport provider. For example, the computing system 100 can exclude the transport provider 194 from any currently offered bonus contracts. Additionally or alternatively, if a certain demerit threshold is crossed, the computing system 100 can exclude the transport provider 194 from the on-demand transport service altogether.

Hardware Diagram

FIG. 4 is a block diagram that illustrates a computer system 400 upon which examples described herein may be implemented. A computer system 400 can be implemented on, for example, a server or combination of servers. For example, the computer system 400 may be implemented as part of a network service, such as the on-demand transport service described in connection with FIGS. 1 through 3B. In the context of FIG. 1, the computing system 100 may be implemented using a computer system 400 described by FIG. 4. The computing system 100 may also be implemented using a combination of multiple computer systems 400 as described in connection with FIG. 4.

In one implementation, the computer system 400 includes processing resources 410, a main memory 420, a read-only memory (ROM) 430, a storage device 440, and a communication interface 450. The computer system 400 includes at least one processor 410 for processing information stored in the main memory 420, such as provided by a random-access memory (RAM) or other dynamic storage device, for storing information and instructions which are executable by the processor 410. The main memory 420 also may be used for storing temporary variables or other intermediate information during execution of instructions to be executed by the processor 410. The computer system 400 may also include the ROM 430 or other static storage device for storing static information and instructions for the processor 410. A storage device 440, such as a magnetic disk or optical disk, is provided for storing information and instructions.

The communication interface 450 enables the computer system 400 to communicate over one or more networks 480 (e.g., cellular network) through use of the network link (wireless or wired). Using the network link, the computer system 400 can communicate with one or more computing devices, one or more servers, and/or one or more databases. In accordance with examples, the computer system 400 receives transport requests 482 from mobile computing devices of individual users, and location data 484 from transport providers.

By way of example, the instructions and data stored in the memory 420 can be executed by the processor 410 to implement the functions of an example computing system 100 of FIG. 1. In various examples, the processor 410 can execute the matching instructions 424 to receive location data 484 from transport providers and transport requests 482 from requesting users, and match the requesting users with transport providers, and transmit transport invitations 452 to matched transport providers, as described herein. In certain implementations, the processor 410 executes the inference instructions 426 to receive the location data 484 from the transport providers, determine locational attributes of the transport provider, compare the locational attributes to a matching driving profile 428 of a road segment on which the transport provider traverses, and ultimately determine whether the transport provider is operating location-spoofing software.

Examples described herein are related to the use of the computer system 400 for implementing the techniques described herein. According to one example, those techniques are performed by the computer system 400 in response to the processor 410 executing one or more sequences of one or more instructions contained in the main memory 420. Such instructions may be read into the main memory 420 from another machine-readable medium, such as the storage device 440. Execution of the sequences of instructions contained in the main memory 420 causes the processor 410 to perform the process steps described herein. In alternative implementations, hard-wired circuitry may be used in place of or in combination with software instructions to implement examples described herein. Thus, the examples described are not limited to any specific combination of hardware circuitry and software.

It is contemplated for examples described herein to extend to individual elements and concepts described herein, independently of other concepts, ideas or systems, as well as for examples to include combinations of elements recited anywhere in this application. Although examples are described in detail herein with reference to the accompanying drawings, it is to be understood that the concepts are not limited to those precise examples. As such, many modifications and variations will be apparent to practitioners skilled in this art. Accordingly, it is intended that the scope of the concepts be defined by the following claims and their equivalents. Furthermore, it is contemplated that a particular feature described either individually or as part of an example can be combined with other individually described features, or parts of other examples, even if the other features and examples make no mentioned of the particular feature. Thus, the absence of describing combinations should not preclude claiming rights to such combinations. 

What is claimed is:
 1. A computing system operating an application service, comprising: a network communication interface to communicate, over one or more networks, with computing devices of drivers; one or more processors; and one or more memory resources storing instructions that, when executed by the one or more processors, cause the computing system to: receive, over the one or more networks, location data from the computing devices, each of the computing devices operating a designated application associated with the application service; determine, based at least in part on the location data received from a computing device of a respective driver, a set of locational attributes of the respective driver; determine whether one or more anomalous locational attributes are present in the set of locational attributes of the respective driver; and in response to determining that one or more anomalous locational attributes are present, associate a data set with a driver profile of the respective driver.
 2. The computing system of claim 1, wherein the set of locational attributes comprises at least one of a position, a velocity, an acceleration, or an elevation of the respective driver.
 3. The computing system of claim 2, wherein the executed instructions further cause the computing system to: determine whether the respective driver is operating a location-spoofing application by applying a location-based feasibility model to the set of locational attributes.
 4. The computing system of claim 3, wherein the location-based feasibility model outputs a determination of whether the respective driver is operating a location-spoofing application.
 5. The computing system of claim 3, wherein the location-based feasibility model outputs a probability that the respective driver is operating a location-spoofing application.
 6. The computing system of claim 3, wherein the location-spoofing application comprises a third-party global positioning system (GPS) spoofing application.
 7. The computing system of claim 1, wherein the executed instructions cause the computing system to determine whether the respective driver is operating a location-spoofing application by running the set of locational attributes through a set of computational rules that output a determination of whether the respective driver is operating a location-spoofing application.
 8. The computing system of claim 8, wherein the set of computational rules comprises a point-to-point computation indicating whether the velocity of the respective driver exceeds a feasibility threshold.
 9. The computing system of claim 1, further comprising: a database storing sets of driving profiles for various road segments of the region; wherein the executed instructions cause the computing system to determine whether the respective driver is operating a location-spoofing application by (i) performing a lookup in the database for a matching driving profile corresponding to a road segment traveled by the respective driver as indicated by the location data received from the computing device of the respective driver, and (ii) comparing the set of locational attributes of the respective driver with the matching driving profile.
 10. The computing system of claim 9, wherein each driving profile in the stored sets of driving profiles indicates a minimum feasible time to drive from a start point to an end point of a road segment corresponding to the driving profile.
 11. The computing system of claim 1, wherein associating the data set with the driver profile of the respective driver causes the respective driver to be excluded from matching operations in connection with the application service.
 12. The computing system of claim 1, wherein the executed instructions further cause the computing system to: determine whether the respective driver is operating a location-spoofing application by executing a motion simulation based on the location data received from the computing device of the respective driver.
 13. The computing system of claim 1, wherein the one or more anomalous locational attributes correspond to the respective driver jumping ahead in a queue of drivers awaiting matches with requesting riders.
 14. The computing system of claim 1, wherein the one or more anomalous locational attributes correspond to one or more location points being added by a location-spoofing application to increase distance traveled by the respective driver.
 15. The computing system of claim 1, wherein associating the data set with the driver profile of the respective driver affects a compensation of the respective driver.
 16. A non-transitory computer readable medium storing instructions that, when executed by one or more processors, cause the one or more processors to: receive, over one or more networks, location data from computing devices of drivers, each of the computing devices operating a designated application associated with an application service; determine, based at least in part on the location data received from a computing device of a respective driver, a set of locational attributes of the respective driver; determine whether one or more anomalous locational attributes are present in the set of locational attributes of the respective driver; and in response to determining that one or more anomalous locational attributes are present, associate a data set with a driver profile of the respective driver.
 17. The non-transitory computer readable medium of claim 16, wherein the one or more anomalous locational attributes correspond to the respective driver jumping ahead in a queue of drivers awaiting matches with requesting riders.
 18. The non-transitory computer readable medium of claim 16, wherein the one or more anomalous locational attributes correspond to one or more location points being added by a location-spoofing application to increase distance traveled by the respective driver.
 19. The non-transitory computer readable medium of claim 16, wherein associating the data set with the driver profile of the respective driver affects a compensation of the respective driver.
 20. A computer-implemented method of implementing an application service, the method being performed by one or more processors and comprising: receiving, over one or more networks, location data from computing devices of drivers, each of the computing devices operating a designated application associated with an application service; determining, based at least in part on the location data received from a computing device of a respective driver, a set of locational attributes of the respective driver; determining whether one or more anomalous locational attributes are present in the set of locational attributes of the respective driver; and in response to determining that one or more anomalous locational attributes are present, associating a data set with a driver profile of the respective driver. 